Description
A path traversal vulnerability in Jenkins Support Core Plugin 2.63 and earlier allows attackers with Overall/Read permission to delete arbitrary files on the Jenkins master.
Remediation
References
http://www.openwall.com/lists/oss-security/2019/11/21/1
https://jenkins.io/security/advisory/2019-11-21/#SECURITY-1634
Related Vulnerabilities
CVE-2020-6428 Vulnerability in npm package electron
CVE-2022-45868 Vulnerability in maven package com.h2database:h2
CVE-2022-4640 Vulnerability in maven package net.mingsoft:ms-mcms
CVE-2022-24823 Vulnerability in maven package io.netty:netty-common
CVE-2020-2274 Vulnerability in maven package org.jenkins-ci.plugins:elastestv